Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.mft
File: PSN1jftvHUPc1k0PCrJ-9xUTWVI.mft (raw, json)
Hash identifier: 0b/9AHVaQ455QUywH0NNiLpSFY2Hcow1hTp+LejBwJY=
Subject key identifier: 59:99:AC:34:E5:34:3B:83:9D:53:6B:A6:23:B1:50:1E:7A:E2:68:89
Authority key identifier: 3D:23:75:8D:FB:6F:1D:43:DC:D6:4D:0F:0A:B2:7E:F7:15:13:59:52
Certificate issuer: /CN=3d23758dfb6f1d43dcd64d0f0ab27ef715135952
Certificate serial: 019A0C0163B7D0C728C182932D8164E53416
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PSN1jftvHUPc1k0PCrJ-9xUTWVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.mft
Manifest number: 05CA
Signing time: Wed 22 Oct 2025 13:00:08 +0000
Manifest this update: Wed 22 Oct 2025 13:00:08 +0000
Manifest next update: Thu 23 Oct 2025 13:00:08 +0000
Files and hashes: 1: PSN1jftvHUPc1k0PCrJ-9xUTWVI.crl (hash: N+GZ+imQEBZRz8MxPcjx+EIMbu2U2SMCDIkK4ZmUGpg=)
2: cNQzFblAKvFr8hGK7lwE2E-QroQ.roa (hash: 6L0JpdKsg5wIV7DiGvLclmuCfLf4+RgtvQ0jAlVXODk=)
3: sq8t5TnYeFbLwzKDRurrhu8TSwI.roa (hash: BEQOlbgnZNiMmu4zSM6xloAN2ehefN/KrPp5K3vJnWw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/PSN1jftvHUPc1k0PCrJ-9xUTWVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 08:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0c:01:63:b7:d0:c7:28:c1:82:93:2d:81:64:e5:34:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d23758dfb6f1d43dcd64d0f0ab27ef715135952
Validity
Not Before: Oct 22 13:00:08 2025 GMT
Not After : Oct 23 13:00:08 2025 GMT
Subject: CN=5999ac34e5343b839d536ba623b1501e7ae26889
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:9e:8c:eb:73:57:63:ff:9f:a6:6e:f6:20:23:
7b:ed:17:91:3c:d2:51:38:1f:92:ce:0c:39:e3:48:
7d:fb:d8:f0:97:5e:5f:38:07:43:33:bf:fe:fc:a7:
df:d5:71:a7:27:43:58:ab:b5:20:e7:66:65:1c:c1:
03:91:84:f2:42:00:dd:0d:59:e5:ee:7d:43:88:6e:
70:26:83:ba:14:5f:d7:ec:c5:89:3a:01:58:f9:5a:
79:b1:88:29:ec:33:0a:6d:81:8b:50:1f:8c:92:38:
99:03:b0:d8:df:bf:64:c9:96:ff:16:ce:c1:61:6d:
76:79:6f:6b:bf:3b:21:1c:b5:d7:15:7c:6f:3b:84:
cd:40:18:53:c7:dd:c4:5d:75:f0:5b:f8:2e:4c:57:
fa:17:49:51:48:98:9d:f2:eb:16:ea:22:0d:d6:5f:
8c:a6:78:8c:11:f8:45:af:99:3f:23:c0:7d:0b:9c:
6e:f3:64:1e:6f:c4:2d:dc:0e:2e:58:b4:9c:e0:2e:
67:a6:3b:31:4d:4c:90:7c:ca:46:e9:f2:55:ef:29:
b3:a0:fd:64:c8:c1:ac:fd:a7:dd:8b:91:9f:34:44:
e4:c1:14:74:0e:d4:02:c9:77:b2:c2:4a:1c:03:07:
de:3f:59:b0:40:ca:50:56:76:9a:c4:0a:02:de:82:
8b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:99:AC:34:E5:34:3B:83:9D:53:6B:A6:23:B1:50:1E:7A:E2:68:89
X509v3 Authority Key Identifier:
keyid:3D:23:75:8D:FB:6F:1D:43:DC:D6:4D:0F:0A:B2:7E:F7:15:13:59:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PSN1jftvHUPc1k0PCrJ-9xUTWVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:10:f0:c1:d8:f6:c6:5d:5c:ab:06:be:4e:9e:fc:2e:4f:2c:
74:f1:7e:c7:2c:06:39:e2:0e:0b:8f:52:95:1d:93:f4:51:18:
78:ef:48:69:93:f4:23:05:bd:91:84:84:a1:07:29:ed:d7:8e:
64:e7:33:4f:34:cd:6b:74:7b:2e:86:40:8b:9d:05:b8:f6:eb:
09:53:87:cd:df:4d:06:f1:b5:ed:66:79:42:96:9b:d7:fa:88:
4e:8e:19:85:c7:87:7f:3e:49:c8:ee:a7:f6:ce:b4:90:5e:5d:
8f:86:bc:ea:05:30:9b:d3:ae:1c:23:f1:be:47:b5:8d:82:7c:
e4:e0:75:91:87:da:e9:41:28:7b:b5:1b:8a:93:e3:6c:af:2e:
86:19:16:62:3a:bc:b2:27:b5:bf:c4:43:fb:0f:7f:07:1b:02:
b7:f6:3f:15:fd:9e:95:1e:9a:8b:c5:42:49:da:13:cd:35:e6:
64:04:ef:b7:b9:64:a2:0a:ab:2a:bb:03:3b:ef:d6:a9:bc:bf:
64:a4:e1:4b:e7:9a:9b:28:9e:97:5b:ed:28:cd:75:86:71:05:
4c:f2:93:0d:63:48:f7:e4:a6:35:8e:e9:53:93:66:58:4e:2d:
d4:c9:73:2a:2d:22:b7:7e:9d:ba:82:cf:35:ca:f6:9a:ea:7a:
08:72:56:5c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZoMAWO30McowYKTLYFk5TQWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkMjM3NThkZmI2ZjFkNDNkY2Q2NGQwZjBhYjI3ZWY3MTUx
MzU5NTIwHhcNMjUxMDIyMTMwMDA4WhcNMjUxMDIzMTMwMDA4WjAzMTEwLwYDVQQD
Eyg1OTk5YWMzNGU1MzQzYjgzOWQ1MzZiYTYyM2IxNTAxZTdhZTI2ODg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApZ6M63NXY/+fpm72ICN77ReRPNJR
OB+Szgw540h9+9jwl15fOAdDM7/+/Kff1XGnJ0NYq7Ug52ZlHMEDkYTyQgDdDVnl
7n1DiG5wJoO6FF/X7MWJOgFY+Vp5sYgp7DMKbYGLUB+MkjiZA7DY379kyZb/Fs7B
YW12eW9rvzshHLXXFXxvO4TNQBhTx93EXXXwW/guTFf6F0lRSJid8usW6iIN1l+M
pniMEfhFr5k/I8B9C5xu82Qeb8Qt3A4uWLSc4C5npjsxTUyQfMpG6fJV7ymzoP1k
yMGs/afdi5GfNETkwRR0DtQCyXeywkocAwfeP1mwQMpQVnaaxAoC3oKL7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFmZrDTlNDuDnVNrpiOxUB564miJMB8GA1UdIwQY
MBaAFD0jdY37bx1D3NZNDwqyfvcVE1lSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFNOMWpmdHZIVVBjMWswUENySi05eFVUV1ZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC82NmVmYjQtZDJlYy00MGQ2LTlhM2Ut
Nzk5MGU4N2JiZDVmLzEvUFNOMWpmdHZIVVBjMWswUENySi05eFVUV1ZJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC82NmVmYjQtZDJlYy00MGQ2LTlhM2UtNzk5MGU4N2JiZDVm
LzEvUFNOMWpmdHZIVVBjMWswUENySi05eFVUV1ZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJxDwwdj2
xl1cqwa+Tp78Lk8sdPF+xywGOeIOC49SlR2T9FEYeO9IaZP0IwW9kYSEoQcp7deO
ZOczTzTNa3R7LoZAi50FuPbrCVOHzd9NBvG17WZ5Qpab1/qITo4ZhceHfz5JyO6n
9s60kF5dj4a86gUwm9OuHCPxvke1jYJ85OB1kYfa6UEoe7UbipPjbK8uhhkWYjq8
sie1v8RD+w9/BxsCt/Y/Ff2elR6ai8VCSdoTzTXmZATvt7lkogqrKrsDO+/Wqby/
ZKThS+eamyiel1vtKM11hnEFTPKTDWNI9+SmNY7pU5NmWE4t1MlzKi0it36duoLP
Ncr2mup6CHJWXA==
-----END CERTIFICATE-----
Generated at Wed Oct 22 14:43:37 2025 by rpki-client